CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: PCI: pciehp: Fixed an infinite loop in the IRQ handler upon a power fault. The Power Fault Detected bit in the Slot Status register differs from all other hot-plug events in that it is sticky: It can only be cleared after...

5.5CVSS6AI score0.0021EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: xgmac: Fixed the handling of Data Path Parity Errors for DMA channels. The commit 56e58d6c8a56 „net: stmmac: Implement Safety Features in XGMAC core“ checks for safety errors, but leaves Data Path Parity Errors for...

5.5CVSS6AI score0.00223EPSS

Exploits0References1

AstraLinux•added 2026/06/19 11:10 a.m.•8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: Fixed an issue where an interrupt storm occurred after receiving a corrupted ifid in the IRQ handler. Commit 31a7a0bbeb00 “dpaa2-switch”: added a range check for ifid in the IRQ handler introduces a mechanism to...

7.8CVSS5.3AI score0.00121EPSS

Exploits0References1

SUSE CVE•added 2026/05/15 1:58 a.m.•7 views

SUSE CVE-2026-43488

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Prevent interrupt storm on host controller error HCE The xHCI controller reports a Host Controller Error HCE in UAS Storage Device plug/unplug scenarios on Android devices. HCE is checked in xhciirq function and causes...

EUVD•added 2026/05/13 6:30 p.m.•25 views

EUVD-2026-30024

RedhatCVE•added 2026/05/13 5:8 p.m.•10 views

Exploits0References6

CVE-2026-43488

A flaw was found in the Linux kernel's xHCI eXtensible Host Controller Interface driver. When a USB Attached SCSI UAS storage device is connected or disconnected, the xHCI controller can report a Host Controller Error HCE. Improper handling of this error can lead to an interrupt storm, causing...

5.5CVSS5.8AI score0.00114EPSS

Exploits0References4

NVD•added 2026/05/13 4:16 p.m.•14 views

CVE-2026-43488

5.5CVSS0.00114EPSS

Exploits0References5

UbuntuCve•added 2026/05/13 4:16 p.m.•12 views

CVE-2026-43488

OSV•added 2026/05/13 4:16 p.m.•7 views

UBUNTU-CVE-2026-43488

5.5CVSS5.7AI score0.00114EPSS

CVE•added 2026/05/13 3:8 p.m.•20 views

CVE-2026-43488

CVE-2026-43488 : Linux kernel xHCI driver vulnerability where a Host Controller Error (HCE) on UAS storage plug/unplug could trigger an interrupt storm. The issue occurred as xhci_irq() logged a warning and assumed activity would stop, but storms persisted on some hosts. Mitigation implemented by...

5.5CVSS5.8AI score0.00114EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/05/13 3:8 p.m.•7 views

CVE-2026-43488

Exploits0References6Affected Software1

Cvelist•added 2026/05/13 3:8 p.m.•45 views

CVE-2026-43488 usb: xhci: Prevent interrupt storm on host controller error (HCE)

0.00114EPSS

Exploits0References5

Debian CVE•added 2026/05/13 3:8 p.m.•11 views

CVE-2026-43488

5.5CVSS5.8AI score0.00114EPSS

Exploits0

CNNVD•added 2026/05/13 12:0 a.m.•11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the xHCI controller failing to clear interrupts when reporting host controller errors, potentiall...

Positive Technologies•added 2026/05/13 12:0 a.m.•12 views

Exploits0References1

PT-2026-40695

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the xHCI controller where a Host Controller Error HCE occurs during UAS Storage Device plug/unplug scenarios on Android devices. The xhci irq function checks for HCE,...

5.5AI score0.00114EPSS

Exploits0References46

Tenable Nessus•added 2026/05/13 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-43488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: xhci: Prevent interrupt storm on host controller error HCE The xHCI controller reports a Host Controller Error HCE in UAS Storage Device plug/unplug...

5.5CVSS5.9AI score0.00114EPSS

Tenable Nessus•added 2026/04/05 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-23422

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: Fix interrupt storm after receiving bad ifid in IRQ handler Commit 31a7a0bbeb0...

7.8CVSS5.8AI score0.00121EPSS

SUSE CVE•added 2026/04/03 11:28 p.m.•4 views

SUSE CVE-2026-23422

In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: Fix interrupt storm after receiving bad ifid in IRQ handler Commit 31a7a0bbeb00 "dpaa2-switch: add bounds check for ifid in IRQ handler" introduces a range check for ifid to avoid an out-of-bounds access. If an...

7.8CVSS5.8AI score0.00121EPSS

RedhatCVE•added 2026/04/03 3:6 p.m.•2 views

CVE-2026-23422

A flaw was found in the Linux kernel's dpaa2-switch component. When an out-of-bounds interface identifier ifid is detected in the interrupt handler, the interrupt status is not properly cleared. This oversight can lead to an interrupt storm, resulting in a Denial of Service DoS condition for the...

7.8CVSS5.8AI score0.00121EPSS